(OWASP) A3-Cross-Site Scripting (XSS)

30 Jan 2018 Web-Pentesting

Cross-Site Scripting (XSS) attacks are a type of injection, in which malicious scripts are injected into otherwise benign and trusted web sites. XSS attacks occur when an attacker uses a web application to send malicious code, generally in the form of a browser side script, to a different end user. Flaws that allow these attacks to succeed are quite widespread and occur anywhere a web application uses input from a user within the output it generates without validating or encoding it.

An attacker can use XSS to send a malicious script to an unsuspecting user. The end user’s browser has no way to know that the script should not be trusted, and will execute the script. Because it thinks the script came from a trusted source, the malicious script can access any cookies, session tokens, or other sensitive information retained by the browser and used with that site. These scripts can even rewrite the content of the HTML page.

Question 1 – What is (XXS) ?


Ans:-

  • An attacker can inject unrestricted snippets of JavaScript into your application without Validation.
  • This JavaScript is then executed by the victim who is visiting the target site.
  • There are 3 Primary types of XSS, Reflected, Stired, & DOM based.
    • Reflected XXS - An attacker sends the victim a link to the target application through email, social media, etc. This link has a script embedded within it which executes when visiting the target site
    • Stored XSS – An attacker is able to plant a persistent Script in the target Website which will execute when anyone visits it.
    • Dom Based XSS – No HTTP request is required, the script is injected as a result of modifying the DOM of the target site in the client side code in the victim’s browser and is then executed.
  • Approximately 17% of all applications tested are vulnerable to XSS.

Question 2 – What are the Risk of (XSS) ?


Ans:-

  • Compromise or take over the Victim’s user account in the application.
  • Retrieval of data from the target web application.
  • Modification of content on the target page.
  • Redirection victim’s to another malicious or spoof site.
  • Platform to install other malware on the victim’s system.

Question 3 – How to prevent yourself from (XSS) ?


Ans:- Many different strategies can be used to protect an application against (XXS).

  • Use Vetted Library or Framework
  • Output Encoding
  • Use HTTP Only attribute
  • Input Validation

DEMO - Comming Soon!

~ Hack the World and Stay Noob

Twitter / Hack The Box / CTF Team / Teck_N00bs Community Telegram

Comments

Related Posts